CN103685323B - A kind of Smart Home safe network implementation method based on intelligent cloud television gateway - Google Patents

A kind of Smart Home safe network implementation method based on intelligent cloud television gateway Download PDF

Info

Publication number
CN103685323B
CN103685323B CN201410001601.4A CN201410001601A CN103685323B CN 103685323 B CN103685323 B CN 103685323B CN 201410001601 A CN201410001601 A CN 201410001601A CN 103685323 B CN103685323 B CN 103685323B
Authority
CN
China
Prior art keywords
ukey
intelligent
home device
cloud television
intelligent cloud
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN201410001601.4A
Other languages
Chinese (zh)
Other versions
CN103685323A (en
Inventor
王雅哲
王瑜
韩振
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Institute of Information Engineering of CAS
Original Assignee
Institute of Information Engineering of CAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Institute of Information Engineering of CAS filed Critical Institute of Information Engineering of CAS
Priority to CN201410001601.4A priority Critical patent/CN103685323B/en
Publication of CN103685323A publication Critical patent/CN103685323A/en
Application granted granted Critical
Publication of CN103685323B publication Critical patent/CN103685323B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Abstract

A kind of Smart Home safe network implementation method based on intelligent cloud television gateway, wherein Smart Home internal network refers to the intelligent cloud television gateway as user's Smart Home, mutual with the equipment being in household internal, and the network environment that household internal equipment is formed, also referred to as Smart Home Intranet can be controlled.Intelligent cloud television refers to obtain device certificate based on PKI digital certificate system and can provide the secure storage areas of safe read-write and with ZigBee radio communication suspension member, the uniform outlet communicated public network as Smart Home, also referred to as intelligent cloud television gateway.Portable UKey refers to have equipment room intercommunication module and the equipment of safety caculation module.Intelligent home device refers to integrated ZigBee radio communication suspension member, has detection, controls, processes the home equipment of the functions such as data.Wherein ZigBee radio communication suspension member refers to the pluggable module providing ZigBee communication and safety to calculate.The present invention has an advantage that safety is high, confidentiality is strong, and versatility and user experience good.

Description

A kind of Smart Home safe network implementation method based on intelligent cloud television gateway
Technical field
The invention belongs to Smart Home internal network security field, be specifically related to a kind of intelligence based on intelligent cloud television gateway Can house security networking implementation method.
Background technology
Along with Internet of Things, the integration of three networks, the deep development of cloud computing generation information technology, the intellectuality of terminal unit, Networking becomes the major trend of electron trade development, is expected to drive the upgrading of conventional industries.Intelligent cloud television is traditional tv With the fusant of emerging technology, as a kind of safe and reliable information carrier, on audio-visual quality, not only obtain huge changing Entering and improve, and user can be allowed to live and become more intelligent, therefore, it is the heaviest that intelligent cloud television will become each family life The ingredient wanted.Intelligent cloud television has the features such as intellectuality, platform immobilization and large screen display, can be as Smart Home Home gateway and Smart Home controllable device perfect adaptation, the secure interactive with public network carries out information, thoroughly realize family Intelligent management and control, solves user simultaneously and service provider is distrusted problem (the most each user access to home intelligent equipment The intelligent cloud television gateway controlling all to meet at oneself processes), bring high-quality home services to enjoy for user.But, faced by This emerging intelligent equipment of intelligent cloud television, relevant research institution and business organization also do not have clear and definite proposition relatively reasonable Perfect scheme solves intelligent cloud television and realizes controlling safely home equipment to access as wired home control gateway;With In the Smart Home internal network design of Shi Chuantong, the simple Zigbee protocol of general employing carries out group-net communication between home equipment, Carrying out networking only with this agreement and there is safety issue, the intelligent home device such as user can be by the household net of other families Pass is controlled, home gateway networking exists illegality equipment access, the data message of transmission can be trapped acquisition etc..In recent years, one A little enterprises have started to explore and realize home equipment networking under anthropic factor control, to meet user to Smart Home safety Demand, and obtain certain achievement, but the most it is not fully solved this problem.
Summary of the invention
The technology of the present invention solves problem: overcome the deficiencies in the prior art, it is provided that a kind of intelligence based on intelligent cloud television gateway Can house security networking implementation method, there is the advantage that safety is high, confidentiality is strong, and versatility and user experience good.
The technology of the present invention solution: a kind of Smart Home safe network implementation method based on intelligent cloud television gateway, Wherein Smart Home internal network refers to the intelligent cloud television gateway as user's Smart Home, hands over the equipment being in household internal Mutually, and the network environment that household internal equipment is formed can be controlled, also referred to as Smart Home Intranet.Intelligent cloud television refers to obtain Device certificate based on PKI digital certificate system and the secure storage areas of safe read-write can be provided and with ZigBee radio communication Suspension member, uniform outlet public network communicated as Smart Home, also referred to as intelligent cloud television gateway.Portable UKey refers to a kind of logical Cross USB(USB) be directly connected with the Micro-USB mouth of intelligent movable equipment, have cryptographic authorization functions, Reliable small memory device at a high speed, i.e. has setting of equipment room intercommunication module and safety caculation module (such as safety chip) Standby.Intelligent home device refers to integrated ZigBee radio communication suspension member, has detection, controls, processes the household of the functions such as data Equipment.Wherein ZigBee radio communication suspension member refers to the pluggable mould providing ZigBee communication and safety to calculate (such as safety chip) Block.
Briefly introducing the basic thought of this programme, the present invention has drawn the advantage of existing solution, specifically, and this Bright technical scheme includes following several aspect:
Aspect one: in view of user wants oneself home equipment of Remote Visit and Control, " the key opening door need to be provided the user Spoon ", by intelligent cloud television gateway, UKey is initialized, make UKey obtain demarcation UKey identity based on PKI Certification system Digital certificate, " key " (safety that intelligent cloud television gateway is signed and issued enter license ticket) of opening door and intelligent cloud television net The PKI closed and mark, thus set up user and access the safe and orderly mechanism of permitting the entrance of oneself Smart Home, become Smart Home Have secure access to important safe barrier.
Aspect two: realize the initialization to intelligent home device by obtaining digital certificate UKey, make Smart Home set The standby PKI obtaining the intelligent cloud television gateway being responsible for credible networking voucher and the guarantee mesh information confidentiality signed and issued by UKey, For strengthening safety based on the protocol devices networking of traditional Z igBee, reliability has established solid foundation, it is ensured that networking household The legitimacy of equipment.
Aspect three: in order to avoid illegal home equipment accesses the intelligent cloud television gateway of user, steal subscriber household secret Information, credible networking voucher that intelligent home device is issued by UKey and intelligent cloud television gateway PKI, it is achieved with intelligent cloud The mutual trust checking networking of TV gateway, and consult to obtain the symmetrical key of secure communication with intelligent cloud television gateway, build intelligence Energy cloud TV gateway receives safety permission mechanism and the Intranet house security communication mechanism of intelligent home device.
Aspect four: the key that communicates consulted with intelligent home device by intelligent cloud television gateway, it is achieved the safety of both sides Communication, prevents go-between from illegally obtaining family's private data, it is ensured that the confidentiality of family data information, integrity, carries further Rise the safety of the total system of Smart Home.
The present invention compared with prior art, has a following remarkable advantage:
User experience is good, versatility, safety height, confidentiality are strong.Owing to present invention employs safe and portable UKey's Enforcement pattern, has fabulous user operability, is applicable to general intelligent home device;Use based on PKI public simultaneously The two-layer voucher technology of key cryptosystem and symmetrical key coded communication technology, have extremely strong confidentiality, the anti-property denied, therefore User experience is good, versatility, safety height, confidentiality are strong.
Accompanying drawing explanation
Fig. 1 present invention implements overall framework;
Fig. 2 intelligent cloud television gateway initializes the flow chart of UKey;
Fig. 3 UKey initializes the flow chart of intelligent home device;
Fig. 4 intelligent cloud television gateway verifies the flow chart of networking with intelligent home device mutual trust;
Fig. 5 intelligent cloud television gateway and the flow chart of intelligent home device secure communication.
Detailed description of the invention
The present invention is by intelligent cloud television and portable safety UKey equipment, on traditional Z igBee protocol basis, uses Two-layer voucher based on PKI public key cryptography system and symmetrical key communication encryption, set up Smart Home internal network security service Mechanism.This programme passes through two-layer voucher technology based on PKI public key cryptography system, it is achieved user's intelligent home device and oneself intelligence Communicate between the identity map binding of energy cloud TV gateway and consulting device key, it is ensured that the intelligent home device of user can only be by certainly The intelligent cloud television gateway institute management and control of family, improves the personal secrets of subscriber household equipment;Simultaneously by symmetrical key coded communication Information, it is ensured that transmit the confidentiality of data, integrity between household equipment, promotes the safety coefficient of intelligent domestic system.Its core It is the security service mechanism setting up Smart Home internal network, forms the Smart Home that secure and trusted is controlled, promote Smart Home The sound development of industry.
For making the purpose of the present invention, advantage and technical scheme clearer, by implementing in detail below, and combine Accompanying drawing 1, the present invention is described in more detail.
Fig. 1 being described on the whole to the General Implementing framework of the program, in short, one is that user uses first UKey(UKey of the present invention refers to a kind of by USB(USB) the direct and Micro-USB mouth of intelligent movable equipment Be connected, have the storage device of cryptographic authorization functions) time, UKey need to be inserted in the ZigBee channel radio of intelligent cloud television gateway TV On letter suspension member interface, by the Smart Home App client certificate Cert of UKey solidificationApp, checking TV pre-installs the legal of App Credible.If after App checking is credible, App starts PIN(full name Personal Identification Number, is called for short PIN, It is exactly the individual recognition code of UKey) interface is set, after user successfully arranges the PIN code of UKey, UKey generates the public and private of self , TV is signed and issued the security credence Ticket that enters by keyUKey, TV generate outbound communication key KOutNet, the PKI K of TVTV(pub)And mark IDTV, intelligent cloud television gateway obtains the PKI K of UKey simultaneouslyUKey(pub)With mark IDUKey, thus complete the initialization to UKey Work;Two is that user uses UKey insertion intelligent home device D, intelligent home device D can obtain intelligent cloud television net from UKey The PKI K closedTV(pub)With mark IDTVAnd obtain the credible networking voucher Ticket signed and issued by UKeyD, thus complete intelligence man Occupy the initial work of equipment;Three is after user intelligent home device D completes initial work, according to credible networking voucher TicketDWith intelligent cloud television gateway PKI KTV(pub), autonomously carry out and intelligent cloud television gateway secure and trusted networking and negotiation The communication encryption key of both sidesRealize user's intelligent home device to tie up with oneself identity map of intelligent cloud television gateway Fixed;Four is that user's intelligent cloud television gateway is by communication encryption keyRealize the security control of intelligent home device and Ensure the confidentiality of intelligent home device transmission information.Mainly include following tetrameric content.
One, intelligent cloud television gateway initializes the implementation method of UKey
User wants oneself home equipment of Remote Visit and Control, need to provide the user " key " opening door, pass through intelligence The UKey that user is carried with by energy cloud TV gateway initializes, and UKey can be made to obtain the license ticket Ticket that entersUKeyAnd be The initialization of intelligent home device lays the foundation, below in conjunction with the accompanying drawings its execution process of 2 specific descriptions:
(1), when user uses UKey first, the ZigBee radio communication that UKey be inserted in intelligent cloud television gateway TV is hung On part interface, by the Smart Home App client certificate Cert of UKey solidificationApp, checking TV pre-installs the legal credible of App Property (this legitimate verification principle is), after App checking is credible, UKey and intelligent cloud television gateway TV set up safety by App Trusting relationship;
(2) UKey and intelligent cloud television gateway TV are successfully established safe trusting relationship, the Smart Home App client on TV Ejecting PIN code and arrange interface, after user successfully arranges PIN code, UKey obtains PIN code by App, and then UKey generates public and private key To KUKey(pub)And KUKey(pri)
(3) UKey is by self identification IDUKeyWith PKI KUKey(pub)Send intelligent cloud television gateway TV to;
(4) intelligent cloud television gateway TV receives UKey and identifies IDUKeyWith PKI KUKey(pub)After, generate time stamp T STVWith Outbound communication key KOutNet, use hash algorithm (such as SHA1, SHA256) to calculate IDTV、IDUKeyAnd TSTVCryptographic Hash H= Hash(IDTV||IDUKey||TSTV), use intelligent cloud television gateway TV private key KTV(pri)Cryptographic Hash H is encrypted by private key, forms intelligence Can cloud TV gateway TV signature S TV = Sign [ Hash ( ID TV | | ID UKey | | TS TV ) ] K TV ( pri ) ;
(5) intelligent cloud television gateway TV uses its PKI KTV(pub)UKey is identified IDUKeyWith time stamp T STVEncryption, shape TV is become to use its KTV(pub)The identification information ciphertext of encryption
(6) intelligent cloud television gateway TV will be signed STVWith identification information ciphertextAs entering License ticket Ticket UKey = Sign [ Hash ( ID TV | | ID UKey | | TS TV ) ] K TV ( pri ) | | Enc [ ID UKey | | TS TV ] K TV ( pub ) , To enter License ticket TicketUKey, TV PKI KTV(pub), outbound communication key KOutNetIt is handed down to UKey, simultaneously by the mark of UKey IDUKeyWith PKI KTV(pub)The secure storage areas of TV it is stored in as the important record of UKey;
(7) UKey accepts TV transmission information, uses and obtains PIN code to its private key KUKey(pri)With outbound communication key KOutNet It is encrypted protection respectively, forms private key ciphertext Enc [KUKey(pri)]PINWith outbound communication key ciphertext Enc [KOutNet]PIN
(8) UKey passes through self identification IDUKeyWith other hardware informations (such as memory block capacity and computing chip mark etc.), Generate PIN code protection key KUKey(EncPin)(this key dynamic operation in UKey produces and does not preserves, and enhances the peace of UKey Full property), and by this key KUKey(EncPin)Encryption PIN code, forms PIN code ciphertext
(9) UKey will enter license ticket TicketUKey, TV PKI KTV(pub), PIN code ciphertext Outbound communication key ciphertext Enc [KOutNet]PIN, own public key KUKey(pub)With private key ciphertext Enc [KUKey(pri)]PINAs important Record storage, the initial work of UKey completes.
The successful realization of this process, sets up user and accesses the safe and orderly mechanism of permitting the entrance of oneself Smart Home, become intelligence Important safe barrier can be accessed by house security.
Two, UKey initializes the implementation method of intelligent home device
During intelligent home device networking, intelligent home device D to be ensured can only be by oneself intelligent cloud television net of user Close TV to be identified, to guarantee that this process is safe and reliable simultaneously, use UKey that the initialization of intelligent home device is come here Meet above-mentioned security requirement, user use initial after UKey insert intelligent home device D, intelligent home device D can be from UKey obtains the PKI K of intelligent cloud televisionTV(pub)With the credible networking voucher Ticket signed and issued by UKeyD, below in conjunction with the accompanying drawings 3 Specifically describe its execution process:
(1) UKey after initial is inserted on the ZigBee radio communication suspension member interface of intelligent home device D by user, intelligence After home equipment D identifies UKey, by mark ID of himselfDSend UKey to;
(2) UKey receives mark ID of home equipment DD, generate random number NUKey, use hash algorithm (as SHA1, SHA256) ID is calculatedD、IDUKeyAnd NUKeyCryptographic Hash H=Hash (IDUKey||IDD||NUKey);
(3) UKey passes through self identification IDUKeyWith other hardware informations (such as memory block capacity and computing chip mark etc.), Generate PIN code protection key KUKey(EncPin), and by this key KUKey(EncPin)The PIN code ciphertext of deciphering UKey storage Enc [ PIN ] K UKey ( EncPin ) , Obtain PIN code;
(4) UKey obtains, by PIN code deciphering, the UKey private key K protected by PIN code in memory blockUKey(pri), and with obtaining private key KUKey(pri)(2) step cryptographic Hash is encrypted, forms UKey signature S UKey = Sign [ Hash ( ID UKey | | ID D | | N UKey ) ] K UKey ( pri ) ;
(5) UKey uses the PKI K of intelligent cloud television gatewayTV(pub)To device identification IDDAnd random number NUKeyEncryption, shape UKey is become to use KTV(pub)The identification information ciphertext of encryption
(6) UKey will sign SUKey, identification information ciphertextWith the license ticket Ticket that entersUKey, As networking voucher Ticket D = Sign [ Hash ( ID UKey | | ID D | | N UKey ) ] K UKey ( pri ) | | Enc [ ID D | | N UKey ] K TV ( pub ) | | Ticket UKey It is handed down to intelligent home device D, intelligent home device D by this credible networking voucher TicketDStorage, intelligent home device D's Initial work completes.
The successful realization of this process, for strengthening safety based on the protocol devices networking of traditional Z igBee, reliability is established Solid foundation, it is ensured that the legitimacy of networking home equipment.
Three, the implementation method of networking is verified in intelligent cloud television gateway and intelligent home device mutual trust
After intelligent home device D has initialized, main by achieved with believable networking voucher TicketDAnd intelligent cloud TV gateway PKI KTV(pub), independently carry out secure and trusted networking with intelligent cloud television gateway and consult the communication encryption of both sides KeyRealize the identity map binding of user's intelligent home device and oneself intelligent cloud television gateway, below in conjunction with the accompanying drawings Its execution process of 4 specific descriptions:
(1), after intelligent home device D has initialized, generate random number N D, use this random number NDTo device identification IDD With equipment network voucher TicketDEncryption, forms networking voucher ciphertextThen intelligence is used Cloud TV gateway PKI KTV(pub)To NDEncryption, forms random number ciphertextFinally by random number ciphertext Subsidiary networking voucher ciphertext is as equipment network broadcast messagePass through The ZigBee communication module of intelligent home device D is broadcasted;
(2), after intelligent cloud television gateway TV receives the mesh information of intelligent home device D broadcast, its private key is used KTV(pri)Decrypted random number ciphertext, it is thus achieved that random number ND, then use NDDeciphering networking voucher ciphertext, it is thus achieved that device identification IDDWith Equipment network voucher TicketD, finally checking networking voucher TicketDLegitimacy, intelligent cloud television gateway use UKey PKI KUKey(pub)The signature of checking UKeyObtain cryptographic Hash H=Hash (IDUKey||IDD||NUKey), and with intelligent cloud television gateway private key KTV(pri)Deciphering is used K by UKeyTV(pub)The mark letter of encryption Breath ciphertextObtain device identification IDDThe random number N generated with UKeyUKey, and pacify from it Full storage obtains UKey and identifies IDUKey, use the hash algorithm (such as SHA1, SHA256) identical with UKey signature to calculate IDD、 NUKeyAnd IDUKeyCryptographic Hash H1=Hash (IDUKey||IDD||NUKey), compare cryptographic Hash H and H1It is the most equal, if both are not Identical, then show that UKey is abnormal, networking voucher TicketDIllegal, TV stops next step work;If both are identical, then Showing that UKey is normal, TV uses its PKI KTV(pub)Checking signatureObtain Obtain cryptographic Hash H=Hash (IDTV||IDUKey||TSTV), and with its private key KTV(pri)Deciphering is by KTV(pub)The identification information of encryption is close Literary compositionObtain UKey and identify IDUKeyTime stamp T S generated with TVTV, use and sign with TV Identical hash algorithm (such as SHA1, SHA256) calculates IDTV、IDUKeyAnd TSTVCryptographic Hash H1=Hash (IDTV||IDUKey|| TSTV), compare cryptographic Hash H and H1The most equal, if both differ, then show that TV signature is forged, networking voucher TicketD Illegal, TV stops next step work;If both are identical, then show that TV is normal, networking voucher TicketDChecking legitimacy, Then equipment D information is shown the networking equipment list in intelligent cloud television gateway;If other legal intelligence in subscriber household Home equipment D·After receiving intelligent home device D broadcast message, broadcast will be forwarded based on Zigbee protocol as routing node This information;If intelligent home device D illegal in user's wired home×After receiving intelligent home device D broadcast message, nothing Method obtains by NDThe particular content of encryption data and initiate man-in-the-middle attack to TV;If intelligent cloud television gateway requires networking tool Standby high security and ageing, can control to verify networking voucher TicketDNumber of times and time stamp T S of this voucherTVRealize, I.e. equipment network voucher TicketDIn NDHaving uniqueness, the proving time of networking voucher not can exceed that and opens from timestamp simultaneously The certain time begun;
(3) during user selects intelligent cloud television gateway TV, a certain equipment D(in home equipment networking list such as adds behaviour Make), intelligent cloud television gateway is that this equipment D randomly generates Traffic encryption key(TEK)And by mark ID of equipmentD, networking with Card TicketDAnd Traffic encryption key(TEK)It is stored in its secure storage areas as an equipment record;
(4) intelligent cloud television gateway uses (2) step to obtain random number ND+ 1 couple of device identification IDDAnd Traffic encryption key(TEK)Encryption, forms communication key ciphertextThis ciphertext attendant equipment is identified IDDPass through Its ZigBee communication module is broadcasted;
(5), after intelligent home device D receives TV broadcast data, its (1) step is used to generate random number ND+ 1 deciphering is logical Letter key ciphertext obtains mark ID of equipmentDWith communication encryption keyChecking receives device identification and deciphering acquisition sets The concordance of standby mark, if both verify unanimously, then by communication encryption keyNetworking voucher TicketD, intelligent cloud electricity View closes PKI KTV(pub)Preserve as a record;If both verify inconsistent, then intelligent home device D repeats (1) Step, if perform M(M >=1) secondary, it is thus achieved that mark IDDMark ID is obtained with decipheringDStill consistent, then quit work.If user After intelligent home device D legal in family receives TV broadcast message, by based on ZigBee(low speed short-distance transmission wireless Procotol, low-power consumption the territory fidonetFido of IEEE802.15.4 standard) agreement as routing node, forward and broadcast this information; If intelligent home device D illegal in subscriber household×After receiving TV broadcast message, it is impossible to obtain by NDThe tool of encryption data Internal appearance, then initiate man-in-the-middle attack to intelligent home device D.
The successful execution of this process, intelligent home device and intelligent cloud television gateway complete mutual trust checking networking and consult double The symmetrical key of side's secure communication, builds intelligent cloud television gateway and receives safety permission mechanism and the Intranet of intelligent home device House security communication mechanism.
Four, intelligent cloud television gateway and the implementation method of intelligent home device secure communication
After intelligent cloud television gateway receives the remote control commands to intelligent home device D, use the outer net that it stores Communication key KOutNet(this KOutNetWith UKey one_to_one corresponding) deciphering this equipment control instruction of acquisition, then led to by this equipment D Letter encryption keyComplete and the safe access control of information between intelligent home device, 5 specifically describe it below in conjunction with the accompanying drawings Execution process:
(1) intelligent cloud television gateway TV receive intelligent home device D remote control commands (this instruction format:UKey in intelligent cloud television gateway secure storage areas is used to identify IDUKeyCorresponding Outbound communication key KOutNetCiphertext is instructedIt is decrypted, obtains the mark of this equipment IDDWith control instruction cmd;
(2) Traffic encryption key(TEK) corresponding for home equipment D during Intelligent television terminal gateway TV uses its secure storage areas To device identification IDDEncrypt with control instruction cmd, form the instruction of equipment D Intranet control extensionWill The Intranet control extension instruction attendant equipment mark ID generatedD, should by the ZigBee-network module of intelligent cloud television gateway Control information < < ID D | | Enc [ ID D | | cmd ] K D InNet > > Broadcast;
(3) after intelligent home device D receives the information of intelligent cloud television gateway TV broadcast, the communication encryption stored with it KeyControl extension is instructedIt is decrypted, it is thus achieved that control command cmd and mark IDD, checking Obtain mark IDDThe most consistent with self identification, if checking is consistent, then home equipment D performs this control command cmd and obtains this life After these data data of data data(after the execution of order comprise the exectorial state of home equipment or home equipment execution order Acquisition information, such as intelligent electric lamp on off state, the humiture value information of intelligent temperature and humidity equipment);If verifying inconsistent, then household Equipment D does not do any operation.After if intelligent home device D legal in subscriber household receives TV broadcast message, will be based on Zigbee protocol, as routing node, forwards and broadcasts this information;If intelligent home device D illegal in subscriber household×Receive After TV broadcast message, it is impossible to obtain the particular content of encrypted instruction and initiate man-in-the-middle attack to D;
(4) intelligent home device D will instruct successful execution and obtain data Data and intelligent home device D mark IDD, use intelligence Can home equipment D communication encryption keyEncryption, forms encryption dataD will encrypt number According to subsidiary its mark IDDAs returning dataEntered by the ZigBee communication module of D Row broadcast;
(5) intelligent cloud television gateway TV receives the return data of D broadcast After, utilize and obtain device identification IDDSearch Traffic encryption key(TEK) corresponding for home equipment D in secure storage areasAnd useDeciphering encryption dataObtain the device identification ID of encryptionDWith execution data data, test Mark ID that card directly obtainsDMark ID is obtained with decipheringDThe most consistent, if checking is consistent, then use UKey mark in (1) step Know IDUKeyCorresponding outbound communication key KOutNetTo mark IDDEncrypt with data data, form outer net encryption and perform resultAnd outer net encryption is performed result subsidiary UKey mark IDUKeyAs partial data recordIt is sent to remote control terminal;If verifying inconsistent, then intelligent cloud television gateway weight Multiple perform (2) step, if performing M(M >=1) secondary, it is thus achieved that mark IDDMark ID is obtained with decipheringDStill consistent, then return execution Remote control terminal is given in failure.If other legal intelligent home device D in subscriber household·Receive intelligent home device D wide After broadcasting information, then by wireless network protocol based on ZigBee(low speed short-distance transmission, the low-power consumption of IEEE802.15.4 standard Individual territory fidonetFido) agreement as routing node, forward and broadcast this information;If intelligent home device D illegal in subscriber household× After receiving intelligent home device D broadcast message, it is impossible to obtain the particular content of encrypted data, then initiate go-between to TV and attack Hit.
The successful execution of this process, it is achieved the secure communication of Smart Home Intranet, prevents go-between from illegally obtaining family hidden Private data are launched a offensive, it is ensured that the confidentiality of family data information, integrity, promote the total system of Smart Home further Safety.
Non-elaborated part of the present invention belongs to techniques well known.
The above, part detailed description of the invention the most of the present invention, but protection scope of the present invention is not limited thereto, and appoints How those skilled in the art are in the technical scope that the invention discloses, the change that can readily occur in or replacement all should be contained Within protection scope of the present invention.

Claims (6)

1. a Smart Home safe network implementation method based on intelligent cloud television gateway, it is characterised in that realize step such as Under:
(1), when user uses UKey first, the ZigBee radio communication suspension member that UKey need to be inserted in intelligent cloud television gateway TV connects On mouth, by the Smart Home App client certificate Cert of UKey solidificationApp, checking TV pre-installs the legal credibility of App;Institute State UKey refer to a kind of to be directly connected with the Micro-USB mouth of intelligent movable equipment by USB USB, have close The storage device of code authentication function;If after App checking is credible, App starts the individual recognition code PIN of UKey and arranges interface, uses After family successfully arranges the PIN code of UKey, UKey generates the public private key pair of self, TV signs and issues the security credence Ticket that entersUKey、TV Generate outbound communication key KOutNet, the PKI K of TVTV(pub)Mark ID with TVTV, intelligent cloud television gateway TV obtains simultaneously The PKI K of UKeyUKey(pub)Mark ID with UKeyUKey, thus complete the initial work to UKey;
(2) user uses UKey to insert intelligent home device D, intelligent home device D and obtains intelligent cloud television gateway from UKey PKI KTV(pub)Mark ID with intelligent cloud television gatewayTVAnd obtain the credible networking voucher Ticket signed and issued by UKeyD, thus Complete the initial work to intelligent home device;
(3) after user's intelligent home device D completes initial work, according to credible networking voucher TicketDWith intelligent cloud television net Close PKI KTV(pub), autonomously carry out and intelligent cloud television gateway secure and trusted networking and the communication encryption key of negotiation both sidesRealize the identity map binding of user intelligent home device D and oneself intelligent cloud television gateway TV;
(4) user's intelligent cloud television gateway TV passes through communication encryption keyRealize the security control to intelligent home device D And ensure the confidentiality of intelligent home device transmission information.
Smart Home safe network implementation method based on intelligent cloud television gateway the most according to claim 1, its feature It is: the initial work of the UKey in described step (1) is implemented as follows:
(1), when user uses UKey first, the ZigBee radio communication suspension member that UKey be inserted in intelligent cloud television gateway TV connects On mouth, by the Smart Home App client certificate Cert of UKey solidificationApp, checking TV pre-installs the legal credibility of App, After App checking is credible, UKey and intelligent cloud television gateway TV set up safe trusting relationship by App;
(2) UKey and intelligent cloud television gateway TV are successfully established safe trusting relationship, and the Smart Home App client on TV ejects PIN code arranges interface, and after user successfully arranges PIN code, UKey obtains PIN code by App, and then UKey generates public private key pair KUKey(pub)And KUKey(pri)
(3) UKey is by mark ID of selfUKeyWith PKI KUKey(pub)Send intelligent cloud television gateway TV to;
(4) intelligent cloud television gateway TV receives UKey and identifies IDUKeyWith PKI KUKey(pub)After, generate time stamp T STVAnd outer net Communication key KOutNet, use hash algorithm to calculate IDTV、IDUKeyAnd TSTVCryptographic Hash H=Hash (IDTV||IDUKey|| TSTV), use intelligent cloud television gateway TV private key KTV(pri)Cryptographic Hash H is encrypted by private key, forms intelligent cloud television gateway TV signature
(5) intelligent cloud television gateway TV uses its PKI KTV(pub)Mark ID to UKeyUKeyWith time stamp T STVEncryption, forms TV Use its KTV(pub)The identification information ciphertext of encryption
(6) intelligent cloud television gateway TV will be signed STVWith identification information ciphertextAs license of entering VoucherAnd will enter perhaps Can voucher TicketUKey, TV PKI KTV(pub), outbound communication key KOutNetBeing handed down to UKey, TV is by the mark of UKey simultaneously IDUKeyWith PKI KTV(pub)The secure storage areas of TV it is stored in as the important record of UKey;
(7) UKey accepts TV transmission information, uses and obtains PIN code to its private key KUKey(pri)With outbound communication key KOutNetRespectively It is encrypted protection, forms private key ciphertext Enc [KUKey(pri)]PINWith outbound communication key ciphertext Enc [KOutNet]PIN
(8) UKey passes through self identification IDUKeyAnd other hardware informations including memory block capacity and computing chip identify, Generate PIN code protection key KUKey(EncPin), and by this key KUKey(EncPin)Encryption PIN code, forms PIN code ciphertext
(9) UKey will enter license ticket TicketUKey, TV PKI KTV(pub), PIN code ciphertextOuter net Communication key ciphertext Enc [KOutNet]PIN, own public key KUKey(pub)With private key ciphertext Enc [KUKey(pri)]PINAs important record Storage, the initial work of UKey completes.
Smart Home safe network implementation method based on intelligent cloud television gateway the most according to claim 1, its feature It is: in described step (2), the initial work of intelligent home device is implemented as follows:
(1) UKey after initial is inserted on the ZigBee radio communication suspension member interface of intelligent home device D by user, Smart Home After equipment D identifies UKey, by mark ID of himselfDSend UKey to;
(2) UKey receives mark ID of home equipment DD, generate random number NUKey, use hash algorithm to calculate IDD、IDUKeyWith NUKeyCryptographic Hash H=Hash (IDUKey||IDD||NUKey);
(3) UKey mark ID by selfUKeyAnd other hardware letter including memory block capacity and computing chip identify Breath, generates PIN code protection key KUKey(EncPin), and by this key KUKey(EncPin)The PIN code ciphertext of deciphering UKey storageObtain PIN code;
(4) UKey obtains, by PIN code deciphering, the UKey private key K protected by PIN code in memory blockUKey(pri), and with obtaining private key KUKey(pri)(2) step cryptographic Hash is encrypted, forms UKey signature
(5) UKey uses the PKI K of intelligent cloud television gatewayTV(pub)To device identification IDDAnd random number NUKeyEncryption, is formed UKey uses KTV(pub)The identification information ciphertext of encryption
(6) UKey will sign SUKey, identification information ciphertextWith the license ticket Ticket that entersUKey, make For networking voucher It is handed down to intelligent home device D, intelligent home device D by this credible networking voucher TicketDStorage, intelligent home device D's Initial work completes.
Smart Home safe network implementation method based on intelligent cloud television gateway the most according to claim 1, its feature It is: the user's intelligent home device in described step (3) is concrete real with the identity map binding of oneself intelligent cloud television gateway As follows:
(1), after intelligent home device D has initialized, random number N is generatedD, use this random number NDTo device identification IDDWith set Standby networking voucher TicketDEncryption, forms networking voucher ciphertextThen intelligent cloud electricity is used View closes PKI KTV(pub)To NDEncryption, forms random number ciphertextFinally that random number ciphertext is subsidiary Networking voucher ciphertext is as equipment network broadcast messageBy intelligence The ZigBee communication module of home equipment D is broadcasted;
(2), after intelligent cloud television gateway TV receives the mesh information of intelligent home device D broadcast, its private key K is usedTV(pri)Solve Close random number ciphertext, it is thus achieved that random number ND, then use NDDeciphering networking voucher ciphertext, it is thus achieved that device identification IDDAnd equipment network Voucher TicketD, finally checking networking voucher TicketDLegitimacy, intelligent cloud television gateway TV use UKey PKI KUKey(pub)The signature of checking UKeyObtain cryptographic Hash H=Hash (IDUKey||IDD||NUKey), and with intelligent cloud television gateway private key KTV(pri)Deciphering is used K by UKeyTV(pub)The mark letter of encryption Breath ciphertextObtain device identification IDDThe random number N generated with UKeyUKey, and pacify from it Full storage obtains UKey and identifies IDUKey, use the hash algorithm identical with UKey signature to calculate IDD、NUKeyAnd IDUKeyKazakhstan Uncommon value H1=Hash (IDUKey||IDD||NUKey), compare cryptographic Hash H and H1The most equal, if both differ, then show UKey Abnormal, networking voucher TicketDIllegal, TV stops next step work;If both are identical, then show that UKey is normal, intelligence Its PKI K can be used by cloud TV gateway TVTV(pub)Checking signatureObtain Cryptographic Hash H=Hash (IDTV||IDUKey||TSTV), and with its private key KTV(pri)Deciphering is by KTV(pub)The identification information ciphertext of encryptionObtain UKey and identify IDUKeyTime stamp T S generated with TVTV, use and TV signature phase Same hash algorithm calculates IDTV、IDUKeyAnd TSTVCryptographic Hash H1=Hash (IDTV||IDUKey||TSTV), compare cryptographic Hash H and H1The most equal, if both differ, then show that TV signature is forged, networking voucher TicketDIllegal, TV stops next step Work;If both are identical, then show that TV is normal, networking voucher TicketDChecking legitimacy, then believe intelligent home device D Breath display is in the networking equipment list of intelligent cloud television gateway;If other legal intelligent home device D in subscriber household·Connect After receiving intelligent home device D broadcast message, will forward broadcast this information based on Zigbee protocol as routing node;If Intelligent home device D illegal in subscriber household×After receiving intelligent home device D broadcast message, then cannot obtain by NDAdd The particular content of ciphertext data and initiate man-in-the-middle attack to TV;If intelligent cloud television gateway require networking possess high security and Ageing, then can control to verify networking voucher TicketDNumber of times and time stamp T S of this voucherTVRealize, i.e. equipment network Voucher TicketDIn NDHaving uniqueness, the proving time of networking voucher not can exceed that the timing started from timestamp simultaneously Between;
(3) a certain intelligent home device D in home equipment networking list, intelligent cloud during user selects intelligent cloud television gateway TV TV gateway is that this intelligent home device D randomly generates Traffic encryption key(TEK)And by mark ID of equipmentD, networking voucher TicketDAnd Traffic encryption key(TEK)It is stored in intelligent cloud television gateway TV secure storage areas as an equipment record;
(4) intelligent cloud television gateway uses (2) step to obtain random number ND+ 1 couple of device identification IDDAnd Traffic encryption key(TEK) Encryption, forms communication key ciphertextThis ciphertext attendant equipment is identified IDDBy it ZigBee communication module is broadcasted;
(5), after intelligent home device D receives TV broadcast data, (1) step is used to generate random number ND+ 1 deciphering communication key is close Mark ID of literary composition acquisition equipmentDWith communication encryption keyChecking receives device identification and deciphering obtains device identification Concordance, if both verify unanimously, then by communication encryption keyNetworking voucher TicketD, intelligent cloud television gateway PKI KTV(pub)Preserve as a record;If both verify inconsistent, then intelligent home device D repeats (1) step, if performing M (M >=1) is secondary, it is thus achieved that mark IDDMark ID is obtained with decipheringDStill consistent, then quit work;If it is legal in subscriber household After intelligent home device D receives TV broadcast message, then will forward broadcast this letter based on Zigbee protocol as routing node Breath;If intelligent home device D illegal in subscriber household×After receiving TV broadcast message, it is impossible to obtain by NDEncryption data Particular content, then to intelligent home device D initiate man-in-the-middle attack.
Smart Home safe network implementation method based on intelligent cloud television gateway the most according to claim 1, its feature It is: described step is implemented as follows in (4):
(1) intelligent cloud television gateway TV receives the remote control commands of intelligent home device D, this instruction format:UKey in intelligent cloud television gateway secure storage areas is used to identify IDUKeyCorresponding Outbound communication key KOutNetCiphertext is instructedIt is decrypted, obtains this intelligent home device Mark IDDWith control instruction cmd;
(2) Traffic encryption key(TEK) corresponding for intelligent home device D during Intelligent television terminal gateway TV uses its secure storage areasTo device identification IDDEncrypt with control instruction cmd, form the instruction of intelligent home device D Intranet control extensionThe Intranet control extension instruction attendant equipment mark ID that will generateD, by intelligent cloud television gateway ZigBee-network module is by this control informationBroadcast;
(3) after intelligent home device D receives the information of intelligent cloud television gateway TV broadcast, the communication encryption key stored with itControl extension is instructedIt is decrypted, it is thus achieved that control command cmd and mark IDD, checking obtains Mark IDDThe most consistent with self identification, if checking is consistent, then intelligent home device D performs this control command cmd and obtains this life Data data after the execution of order, after these data data comprise the exectorial state of home equipment or home equipment execution order Acquisition information, including intelligent electric lamp on off state, the humiture value information of intelligent temperature and humidity equipment;If verifying inconsistent, then intelligence Can not do any operation by home equipment D;If after intelligent home device D legal in subscriber household receives TV broadcast message, Then will forward broadcast this information based on Zigbee protocol as routing node;If Smart Home illegal in subscriber household sets Standby D×After receiving TV broadcast message, it is impossible to obtain the particular content of encrypted instruction, then in the middle of intelligent home device D initiates People attacks;
(4) intelligent home device D will instruct successful execution and obtain data Data and intelligent home device D mark IDD, with intelligence man Occupy equipment D communication encryption keyEncryption, forms encryption dataIntelligent home device D By subsidiary for encryption data its mark IDDAs returning dataLed to by the ZigBee of D Letter module is broadcasted;
(5) intelligent cloud television gateway TV receives the return data of intelligent home device D broadcast After, utilize and obtain device identification IDDSearch Traffic encryption key(TEK) corresponding for intelligent home device D in secure storage areasAnd WithDeciphering encryption dataObtain the device identification ID of encryptionDWith perform data data, Mark ID that checking directly obtainsDMark ID is obtained with decipheringDThe most consistent, if checking is consistent, then use UKey in (1) step Mark IDUKeyCorresponding outbound communication key KOutNetTo mark IDDEncrypt with data data, form outer net encryption and perform resultAnd outer net encryption is performed result subsidiary UKey mark IDUKeyAs partial data recordIt is sent to remote control terminal;If verifying inconsistent, then intelligent cloud television gateway weight Multiple perform (2) step, if it is secondary to perform M (M >=1), it is thus achieved that mark IDDMark ID is obtained with decipheringDStill consistent, then return execution Remote control terminal is given in failure;If other legal intelligent home device D in subscriber household·Receive intelligent home device D wide After broadcasting information, then will forward broadcast this information based on Zigbee protocol as routing node;If intelligence illegal in subscriber household Can home equipment D×After receiving intelligent home device D broadcast message, then cannot obtain the particular content of encrypted data to TV Initiate man-in-the-middle attack.
Smart Home safe network implementation method based on intelligent cloud television gateway the most according to claim 2, its feature It is: PIN code protection key K of the generation in described step (8)UKey(EncPin)In UKey, dynamic operation produces and does not preserves, Enhance the safety of UKey.
CN201410001601.4A 2014-01-02 2014-01-02 A kind of Smart Home safe network implementation method based on intelligent cloud television gateway Expired - Fee Related CN103685323B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410001601.4A CN103685323B (en) 2014-01-02 2014-01-02 A kind of Smart Home safe network implementation method based on intelligent cloud television gateway

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410001601.4A CN103685323B (en) 2014-01-02 2014-01-02 A kind of Smart Home safe network implementation method based on intelligent cloud television gateway

Publications (2)

Publication Number Publication Date
CN103685323A CN103685323A (en) 2014-03-26
CN103685323B true CN103685323B (en) 2016-08-17

Family

ID=50321637

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410001601.4A Expired - Fee Related CN103685323B (en) 2014-01-02 2014-01-02 A kind of Smart Home safe network implementation method based on intelligent cloud television gateway

Country Status (1)

Country Link
CN (1) CN103685323B (en)

Families Citing this family (24)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN103873487B (en) * 2014-04-04 2017-04-05 中国科学院信息工程研究所 A kind of household based on the safe suspension member of intelligent home device trusts the implementation method of networking
CN104267681A (en) * 2014-09-15 2015-01-07 马国强 Intelligent device information interaction system and method
CN105007164B (en) * 2015-07-30 2021-07-06 青岛海尔智能家电科技有限公司 Centralized safety control method and device
CN105573134A (en) * 2015-12-30 2016-05-11 深圳众乐智府科技有限公司 Intelligent household equipment control method and intelligent household system
CN106130982B (en) * 2016-06-28 2019-07-12 北京万协通信息技术有限公司 Intelligent household appliance remote control method based on PKI system
CN106330465B (en) * 2016-11-21 2020-10-13 航天信息股份有限公司 Distributed timestamp processing method, server and system
CN107169344B (en) * 2017-05-10 2020-04-21 威盛电子股份有限公司 Method for blocking unauthorized application and apparatus using the same
WO2018209644A1 (en) * 2017-05-18 2018-11-22 深圳市得城网络科技有限公司 Data encryption method and system for smart household
CN107426218B (en) * 2017-07-28 2021-04-20 杭州聪普智能科技有限公司 Intelligent household internal and external network switching control method
KR101936080B1 (en) * 2017-10-26 2019-04-03 순천향대학교 산학협력단 Ksi-based authentication and communication method for secure smart home environment and system therefor
CN108155996B (en) * 2018-03-12 2019-11-22 浙江大学 Smart home safe communication method based on family's channel
CN108537925B (en) * 2018-04-04 2021-05-18 安恒世通(北京)网络科技有限公司 Lock terminal joint control method
CN109617867B (en) * 2018-12-04 2020-08-14 海南高信通科技有限公司 Intelligent gateway system for controlling household equipment
CN109639542B (en) * 2019-02-27 2021-03-30 深圳创维-Rgb电子有限公司 Network distribution method and system based on intelligent home gateway
CN110519267A (en) * 2019-08-27 2019-11-29 国网电子商务有限公司 A kind of article identity encryption method and device
CN110808991B (en) * 2019-11-08 2020-10-09 北京金茂绿建科技有限公司 Method, system, electronic device and storage medium for secure communication connection
CN110716441B (en) * 2019-11-08 2021-01-15 北京金茂绿建科技有限公司 Method for controlling intelligent equipment, intelligent home system, equipment and medium
CN111007814A (en) * 2019-11-21 2020-04-14 时拓(嘉兴)智能科技有限公司 LoRaWAN wireless intelligent home local area network system
CN112019524A (en) * 2020-08-10 2020-12-01 优联三维打印科技发展(上海)有限公司 Communication protocol structure of 3D printing cloud service, data packet processing method and system
CN114125823B (en) * 2020-08-25 2024-02-06 云米互联科技(广东)有限公司 Networking communication encryption method, server, household appliance, system and storage medium
CN112003868B (en) * 2020-08-28 2023-06-16 苏州中科安源信息技术有限公司 Intelligent home system safety communication method based on white box encryption
CN115174145B (en) * 2022-05-30 2023-12-19 青岛海尔科技有限公司 Equipment control method and edge gateway equipment
CN115174302A (en) * 2022-09-06 2022-10-11 杭州涂鸦信息技术有限公司 Processing method, device, equipment and storage medium of pluggable accessory
CN116094825A (en) * 2023-02-01 2023-05-09 成都赛力斯科技有限公司 Communication security protection method, system, electronic equipment and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1867066A (en) * 2005-05-20 2006-11-22 中国移动通信集团公司 Digital television program broadcasting system and method
CN101513044A (en) * 2006-09-04 2009-08-19 诺基亚西门子通信有限责任两合公司 Personalizing any TV gateway
CN102811385A (en) * 2012-08-24 2012-12-05 上海下一代广播电视网应用实验室有限公司 User interactive interface realization method for household intelligent television gateway
CN103024476A (en) * 2013-01-08 2013-04-03 北京视博数字电视科技有限公司 Digital television gateway device and content safeguard method

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1867066A (en) * 2005-05-20 2006-11-22 中国移动通信集团公司 Digital television program broadcasting system and method
CN101513044A (en) * 2006-09-04 2009-08-19 诺基亚西门子通信有限责任两合公司 Personalizing any TV gateway
CN102811385A (en) * 2012-08-24 2012-12-05 上海下一代广播电视网应用实验室有限公司 User interactive interface realization method for household intelligent television gateway
CN103024476A (en) * 2013-01-08 2013-04-03 北京视博数字电视科技有限公司 Digital television gateway device and content safeguard method

Also Published As

Publication number Publication date
CN103685323A (en) 2014-03-26

Similar Documents

Publication Publication Date Title
CN103685323B (en) A kind of Smart Home safe network implementation method based on intelligent cloud television gateway
CN106533655B (en) Method for safe communication of ECU (electronic control Unit) in vehicle interior network
CN103731756B (en) A kind of Smart Home remote secure access control method based on intelligent cloud television gateway
CN103873487B (en) A kind of household based on the safe suspension member of intelligent home device trusts the implementation method of networking
CN107454079B (en) Lightweight equipment authentication and shared key negotiation method based on Internet of things platform
CN103532713B (en) Sensor authentication and shared key production method and system and sensor
CN109923830A (en) System and method for configuring wireless network access device
CN105282179B (en) A method of family&#39;s Internet of Things security control based on CPK
US11736304B2 (en) Secure authentication of remote equipment
EP3422630B1 (en) Access control to a network device from a user device
CN110198295A (en) Safety certifying method and device and storage medium
CN106027251B (en) A kind of identity card card-reading terminal and cloud authentication platform data transmission method and system
CN106027473B (en) Identity card card-reading terminal and cloud authentication platform data transmission method and system
CN103079200A (en) Wireless access authentication method, system and wireless router
CN103427992A (en) Method for establishing secure communication between nodes in a network, network node, key manager, installation device and computer program product
CN108964897B (en) Identity authentication system and method based on group communication
CN106027475B (en) The transmission method and system of a kind of key acquisition method, ID card information
CN109495251A (en) Anti- quantum calculation wired home cloud storage method and system based on key card
CN108964896A (en) A kind of Kerberos identity authorization system and method based on group key pond
CN109920100A (en) A kind of smart lock method for unlocking and system
CN108964895B (en) User-to-User identity authentication system and method based on group key pool and improved Kerberos
CN108600152A (en) Modified Kerberos identity authorization systems based on quantum communication network and method
CN108880799A (en) Multiple identity authorization system and method based on group key pond
Zhang et al. Is Today's End-to-End Communication Security Enough for 5G and Its Beyond?
CN1832400B (en) Contents protection system and method

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20160817

Termination date: 20180102